kiltum (kiltum) wrote,
kiltum
kiltum

Меня просили дать конфиг для постфикса-2.2, который поставлен по рассказке. Под катом текущий конфиг multik.org. Основные траблы были в mydestination= и virtual*

Он стал таким после череды разбирательств и теперь достаточно поправить только первые строки - про имена доменов и пути к сертификатам ;)


myhostname = multik.org
mydomain = multik.org

smtp_tls_key_file = /etc/cert/multik.org.client.key.unsecure                    
smtp_tls_cert_file = /etc/cert/multik.org.client.crt                            
smtp_tls_CAfile = /etc/cert/multik-ca.crt                                       
smtpd_tls_key_file = /etc/cert/multik.org.key.unsecure                          
smtpd_tls_cert_file = /etc/cert/multik.org.crt                                  
smtpd_tls_CAfile = /etc/cert/multik-ca.crt   



queue_directory = /var/spool/postfix
command_directory = /usr/sbin
daemon_directory = /usr/libexec/postfix
mail_owner = postfix
default_privs = nobody
myorigin = $mydomain
inet_interfaces = all
mydestination = 
mynetworks_style = host
in_flow_delay = 1s
smtpd_banner = $myhostname ESMTP $mail_name
debug_peer_level = 2
#debug_peer_list = 1.2.3.4
debugger_command =
         PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin
         xxgdb $daemon_directory/$process_name $process_id & sleep 5
sendmail_path = /usr/sbin/sendmail.postfix
newaliases_path = /usr/bin/newaliases.postfix
mailq_path = /usr/bin/mailq.postfix
setgid_group = postdrop
html_directory = no
manpage_directory = /usr/share/man

alias_maps = hash:/etc/aliases
broken_sasl_auth_clients = yes
smtpd_sasl_auth_enable = yes
transport_maps = mysql:/etc/postfix/transport.cf
virtual_mailbox_domains = $transport_maps
virtual_mailbox_base = /
virtual_uid_maps = mysql:/etc/postfix/ids.cf
virtual_gid_maps = mysql:/etc/postfix/gids.cf
virtual_mailbox_maps = mysql:/etc/postfix/aliases.cf
virtual_alias_maps = mysql:/etc/postfix/remote_aliases.cf
smtpd_recipient_restrictions =  permit_mynetworks,permit_sasl_authenticated,reject_unauth_destination,reject_unauth_pipelining
disable_vrfy_command = yes
smtpd_sasl_security_options = noanonymous
smtpd_sasl_application_name = smtpd
smtpd_sasl2_auth_enable = yes
smtpd_use_tls = yes
smtp_use_tls = yes
smtpd_tls_auth_only = no
smtpd_tls_loglevel = 2
smtpd_tls_received_header = yes
smtpd_tls_session_cache_timeout = 3600s
tls_random_source = dev:/dev/urandom
smtpd_tls_ask_ccert = yes
relay_clientcerts = hash:/etc/postfix/relay_clientcerts
message_size_limit = 102400000
virtual_mailbox_limit = 203800000
local_transport = error:local mail delivery is disabled

Subscribe
  • Post a new comment

    Error

    default userpic

    Your IP address will be recorded 

    When you submit the form an invisible reCAPTCHA check will be performed.
    You must follow the Privacy Policy and Google Terms of use.
  • 1 comment